Filtered Role

A filtered role is a dynamic role created through the
use of an LDAP filter. All users are funneled through the filter and
assigned to the role at the time of the role’s creation. The
filter looks for any attribute value pair (for example, ca=user*) in an entry and automatically assign the users that contain
the attribute to the role.

To Create a Filtered Role

In the Navigation pane, go the organization where the
role will be created.

Click New.

Enter a name for the filtered role.

Enter the information for the search criteria.

For
example,

(&(uid=user1)(|(inetuserstatus=active)(!(inetuserstatus=*))))

If the filter is left blank, by default, the following role
is created:

(objectclass = inetorgperson)

Click Create to initiate the search based on the filter
criteria. The identities defined by the filter criteria are automatically
assigned to the role.

Once the filtered role is created click the name of the
role to view the Users that belong to the role. You can also add services
to the role by clicking the Services tab.